Max CVSS 5.8 Min CVSS 3.5 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2008-5687 5.0
MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via requests for files in images/deleted/.
08-08-2017 - 01:33 19-12-2008 - 17:30
CVE-2008-5250 3.5
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.6.11, 1.12.x before 1.12.2, and 1.13.x before 1.13.3, when Internet Explorer is used and uploads are enabled, or an SVG scripting browser is used and SVG uploads are enabled, allows remot
14-10-2009 - 05:17 19-12-2008 - 17:30
CVE-2008-5252 5.8
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unspecified actions as authenticated users via unknown
14-10-2009 - 05:17 19-12-2008 - 17:30
CVE-2008-5249 4.3
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 through 1.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
14-10-2009 - 05:17 19-12-2008 - 17:30
CVE-2008-5688 4.3
MediaWiki 1.8.1, and other versions before 1.13.3, when the wgShowExceptionDetails variable is enabled, sometimes provides the full installation path in a debugging message, which might allow remote attackers to obtain sensitive information via unspe
18-02-2009 - 05:00 19-12-2008 - 17:30
Back to Top Mark selected
Back to Top